Extensions to SMTP

Murray S. Kucherawy | 12 Jan 2012 00:46

Proprietary or non-standard SMTP AUTH mechanisms

Are there any known proprietary or other non-standard SMTP AUTH mechanisms that deviate from the syntax specified un RFC4954?

For example, is there an unofficial SMTP AUTH mechanism that allows unencoded binary data in the challenges or responses? A vendor controlling both the client and the server could get away with something like that, but something standards-based analyzing that traffic might be confused by it.

Thanks,

-MSK

headers

Alexey Melnikov | 12 Jan 2012 11:12

Re: Proprietary or non-standard SMTP AUTH mechanisms

On 11/01/2012 23:46, Murray S. Kucherawy wrote:

Are there any known proprietary or other non-standard SMTP AUTH mechanisms that deviate from the syntax specified un RFC4954?

Not that I know of.

For example, is there an unofficial SMTP AUTH mechanism that allows unencoded binary data in the challenges or responses? A vendor controlling both the client and the server could get away with something like that, but something standards-based analyzing that traffic might be confused by it.

All SASL exchange data in SMTP must be base64 encoded, so no unencoded binary data can ever occur if IETF standards are followed.

headers

John C Klensin | 12 Jan 2012 17:14

Re: Proprietary or non-standard SMTP AUTH mechanisms

--On Thursday, January 12, 2012 10:12 +0000 Alexey Melnikov
<alexey.melnikov <at> isode.com> wrote:

>> For example, is there an unofficial SMTP AUTH mechanism that
>> allows  unencoded binary data in the challenges or responses?
>> A vendor  controlling both the client and the server could
>> get away with  something like that, but something
>> standards-based analyzing that  traffic might be confused by
>> it.
>> 
> All SASL exchange data in SMTP must be base64 encoded, so no
> unencoded binary data can ever occur if IETF standards are
> followed.

Alexey,

Yes, but I don't think that was Murray's question.  SMTP AUTH
was originally designed in the absence of SASL.  We hope all
non-SASL applications/implementations have disappeared, but I
wouldn't count on it.   When we designed CRAM-MD5, we were at
least vaguely aware of an assortment of cookie/ shared
not-very-secret approaches floating around, some of which relied
on binary data.  I hope those have disappeared too, but I have
no way to verify that they have.

What people forget as they quibble about the security properties
of CRAM-MD5 was that it was specified precisely to illustrate
that something was possible that would not require much more
server effort and support than plain-text passwords (a
requirement that Kerberos and assorted digital signature plans
could not satisfy) and that would be at least a tad more secure
against eavesdropping than either those passwords or [other]
cleartext shared secrets.  Our goal wasn't "high security
mechanism" (we knew how to do those), but "significantly better
than clear text" and that largely to prove a point in the IETF.

But security by obscurity always has some appeal, especially
when eavesdropping in the transmission channel are not believed
to be issues, and old SMTP implementations tend to linger around
as long as they are still perceived as working (e.g., no new
feature appears that they don't have and that is considered
important).  So I don't have much confidence that all of those
old cases have been eliminated and Murray's question, at least
as I understood it, starts me muttering about proving universal
negatives.

    john

headers

Alexey Melnikov | 12 Jan 2012 18:31

Re: Proprietary or non-standard SMTP AUTH mechanisms


On 12/01/2012 16:14, John C Klensin wrote:
> --On Thursday, January 12, 2012 10:12 +0000 Alexey Melnikov
> <alexey.melnikov <at> isode.com>  wrote:
>
>>> For example, is there an unofficial SMTP AUTH mechanism that
>>> allows  unencoded binary data in the challenges or responses?
>>> A vendor  controlling both the client and the server could
>>> get away with  something like that, but something
>>> standards-based analyzing that  traffic might be confused by
>>> it.
>>>
>> All SASL exchange data in SMTP must be base64 encoded, so no
>> unencoded binary data can ever occur if IETF standards are
>> followed.
> Alexey,
Hi John,
> Yes, but I don't think that was Murray's question.  SMTP AUTH
> was originally designed in the absence of SASL.  We hope all
> non-SASL applications/implementations have disappeared, but I
> wouldn't count on it.   When we designed CRAM-MD5, we were at
> least vaguely aware of an assortment of cookie/ shared
> not-very-secret approaches floating around, some of which relied
> on binary data.  I hope those have disappeared too, but I have
> no way to verify that they have.
>
> What people forget as they quibble about the security properties
> of CRAM-MD5 was that it was specified precisely to illustrate
> that something was possible that would not require much more
> server effort and support than plain-text passwords (a
> requirement that Kerberos and assorted digital signature plans
> could not satisfy) and that would be at least a tad more secure
> against eavesdropping than either those passwords or [other]
> cleartext shared secrets.  Our goal wasn't "high security
> mechanism" (we knew how to do those), but "significantly better
> than clear text" and that largely to prove a point in the IETF.
>
> But security by obscurity always has some appeal, especially
> when eavesdropping in the transmission channel are not believed
> to be issues, and old SMTP implementations tend to linger around
> as long as they are still perceived as working (e.g., no new
> feature appears that they don't have and that is considered
> important).  So I don't have much confidence that all of those
> old cases have been eliminated and Murray's question, at least
> as I understood it, starts me muttering about proving universal
> negatives.
While what you say is possible (AUTH= hack is a proof), the requirement 
for base64 encoding AUTH exchange comes from 
draft-myers-smtp-auth-00.txt dated April 1995 (which later became RFC 
2554). So it looks like binary data was never allowed in SMTP AUTH.

(In general SASL mechanisms can exchange arbitrary binary data. How such 
data is transfered on the wire is defined by protocols that use SASL.)

headers

Hector Santos | 12 Jan 2012 21:31

Re: Proprietary or non-standard SMTP AUTH mechanisms

We have a few proprietary SMTP AUTH mechanism. The design goal was to 
lower the development overhead for coding the standard mechanisms, or 
the need for encryption and SSL libraries for our proprietary 
mail/user clients. For an example, the GUI Frontend Navigator client:

        http://www.winserver.com/public/wcnavigator.wct

provided by our operators to their users, uses an internal SMTP AUTH 
mechanism to send mail to its online backend connected local server 
only.   In the past, only IP was used, but with dynamic IPs or mail 
bot clients moved around, SMTP AUTH helps here.

Murray S. Kucherawy wrote:
> Are there any known proprietary or other non-standard SMTP AUTH mechanisms that deviate from the syntax
specified un RFC4954?
> 
> For example, is there an unofficial SMTP AUTH mechanism that allows unencoded binary data in the
challenges or responses?  A vendor controlling both the client and the server could get away with
something like that, but something standards-based analyzing that traffic might be confused by it.
> 
> Thanks,
> -MSK
> 
> 

--

-- 
Sincerely

Hector Santos
http://www.santronics.com
jabber: hector <at> jabber.isdg.net

headers

Murray S. Kucherawy | 12 Jan 2012 21:42

RE: Proprietary or non-standard SMTP AUTH mechanisms


> -----Original Message-----
> From: owner-ietf-smtp <at> mail.imc.org [mailto:owner-ietf-smtp <at> mail.imc.org] On Behalf Of Hector Santos
> Sent: Thursday, January 12, 2012 12:31 PM
> To: ietf-smtp <at> imc.org
> Cc: ietf-smtp <at> imc.org
> Subject: Re: Proprietary or non-standard SMTP AUTH mechanisms
> 
> We have a few proprietary SMTP AUTH mechanism. The design goal was to
> lower the development overhead for coding the standard mechanisms, or
> the need for encryption and SSL libraries for our proprietary mail/user
> clients. For an example, the GUI Frontend Navigator client:
> 
>         http://www.winserver.com/public/wcnavigator.wct
> 
> provided by our operators to their users, uses an internal SMTP AUTH
> mechanism to send mail to its online backend connected local server
> only.   In the past, only IP was used, but with dynamic IPs or mail
> bot clients moved around, SMTP AUTH helps here.

Do they deviate from the SMTP AUTH framework in any way, other than maybe the method name?

That's really what I'm after.  If you do your own thing with its own name but still stick to the general base64
and "334" and such, then it's still compliant as far as the context about which I'm asking.

-MSK

headers

Hector Santos | 13 Jan 2012 04:30

Re: Proprietary or non-standard SMTP AUTH mechanisms

Murray S. Kucherawy wrote:

> Do they deviate from the SMTP AUTH framework in any way, other than 
> maybe the method name?

No deviation other than a private method name, proprietary, but 
standard implementation of SMTP AUTH. Just a private/unique method 
100% designed for proprietary client entry only.

> That's really what I'm after.  If you do your own thing with its own 
> name but still stick to the general base64 and "334" and such, then 
> it's still compliant as far as the context about which I'm asking.

I see your point.

We consider it a trade secret and part of our corporate and legal 
security policy not divulge details, but frankly nothing special other 
than leveraging a standard protocol method including the client/server 
base64 SASL challenge/response handshaking and the expected SMTP AUTH 
reply codes that by design offers the flexibility to offer new 
methods, including non-standard ones.

While off hand at the moment I can't recall any specific method by 
name, I would swear there are quite a few of others private methods by 
just seeing some obscure/unknown AUTH names exposed in logs.  But I 
don't known if they were ever proposed I-D or not.

--

-- 
Sincerely

Hector Santos
http://www.santronics.com
jabber: hector <at> jabber.isdg.net